CVE-2022-22947 - In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code

CVE-2022-22947

Summary

In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured. A remote attacker could make a maliciously crafted request that could allow arbitrary remote execution on the remote host.

References

Vulnerable Configurations

cpe:2.3:a:vmware:spring_cloud_gateway:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:-:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:-:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone4:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone4:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone5:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone5:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone6:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone6:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone7:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone7:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone8:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone8:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone9:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:milestone9:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:rc3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.0:rc3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.10:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:2.2.10:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:-:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone4:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone4:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone5:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone5:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone6:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:milestone6:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:rc:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.0:rc:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_gateway:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:oracle:commerce_guided_search:11.3.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:commerce_guided_search:11.3.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.15.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.15.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.11.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.11.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_console:22.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_console:22.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.2:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 24-07-2023 - 13:47)
Impact:
Exploitability:

CWE

CWE-917

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

Last major update

24-07-2023 - 13:47

Published

03-03-2022 - 22:15

Last modified

24-07-2023 - 13:47